Hi there, I'm new to this site and, indeed, to hacking, although I can code in Perl pretty well. I'm just looking for some general advice from someone who knows the ropes.

So obviously this task involves the traversal technique I performed in Basic 9, as some other questions imply. My question is this: how, when approaching a new task, do you determine what technique of attack is the most appropriate? Given I can't tell what the server will respond to or what language it 'speaks' (SQL, UNIX, Linux etc). Is it just trial and error or is there some diagnostic procedure I can use generally to determine what kind of attack will be required to breach the security measures?

Also, I managed the last two Realistic missions, but only with a lot of research on SQL for number 2. Has anybody got any useful guides or advice vis-a-vi SQL injection? It was really just luck that I got the answer right.

I finally got it, however I consider myself reasonably knowledgeable about NIX commands and I have no idea how to accomplish this mission with them. Is there more than one way to complete the mission? Or is knowledge of d******** t********al considered part of knowing NIX?

raiVolte wrote:I finally got it, however I consider myself reasonably knowledgeable about NIX commands and I have no idea how to accomplish this mission with them. Is there more than one way to complete the mission? Or is knowledge of d******** t********al considered part of knowing NIX?

The technique you hinted is a general one. Also, AFAIK there is only one way to solve this challenge.

Let him who has understanding recount the number of the beast, for it is a human number: His number is 0x029A.

I've found the original page, and I know that I need to submit some kind of codesbut I have no idea what should I send

Explore, explore, explore! Try to figure out what exactly the site is doing. What's up with those poems? Can you maybe misuse any of the poem-related functionalities to read or write something? If so, what should you read or write to get closer to your goal or maybe solve the problem altogether?

Your goal is to put the original index.html file back in place. So, for anything you find while exploring, try to think about ways to use it to your advantage, that is, post your version of index.html or at least get access to some other functionality (e.g. an admin panel if there's any) that will let you do so. Can you think about ways to use anything you found to write /index.html?

Keep in mind, though, this is a simulated mission, so not everything will work as it would IRL

Let him who has understanding recount the number of the beast, for it is a human number: His number is 0x029A.

I've found the original page, and I know that I need to submit some kind of codesbut I have no idea what should I send

Explore, explore, explore! Try to figure out what exactly the site is doing. What's up with those poems? Can you maybe misuse any of the poem-related functionalities to read or write something? If so, what should you read or write to get closer to your goal or maybe solve the problem altogether?

Your goal is to put the original index.html file back in place. So, for anything you find while exploring, try to think about ways to use it to your advantage, that is, post your version of index.html or at least get access to some other functionality (e.g. an admin panel if there's any) that will let you do so. Can you think about ways to use anything you found to write /index.html?

Keep in mind, though, this is a simulated mission, so not everything will work as it would IRL

I got it nowI just forgot to type the file extension

But I wouldn't have got the idea if I didn't see the spoiler in page 64I thought the poems were stored and listed as text in one single page